tm2: Separation_Algebra/ex/VM_Example.thy@1cde7bf45858 (annotated)

25 a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	1	(* Title: Adaptation of example from HOL/Hoare/Separation
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	2	Author: Rafal Kolanski, 2012
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	3	Maintainers: Gerwin Klein <kleing at cse.unsw.edu.au>
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	4	Rafal Kolanski <rafal.kolanski at nicta.com.au>
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	5	*)
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	6
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	7	header "Separation Algebra for Virtual Memory"
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	8
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	9	theory VM_Example
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	10	imports "../Sep_Tactics" "../Map_Extra"
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	11	begin
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	12
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	13	text {*
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	14	Example instantiation of the abstract separation algebra to the sliced-memory
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	15	model used for building a separation logic in ``Verification of Programs in
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	16	Virtual Memory Using Separation Logic'' (PhD Thesis) by Rafal Kolanski.
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	17
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	18	We wrap up the concept of physical and virtual pointers as well as value
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	19	(usually a byte), and the page table root, into a datatype for instantiation.
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	20	This avoids having to produce a hierarchy of type classes.
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	21
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	22	The result is more general than the original. It does not mention the types
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	23	of pointers or virtual memory addresses. Instead of supporting only
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	24	singleton page table roots, we now support sets so we can identify a single
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	25	0 for the monoid.
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	26	This models multiple page tables in memory, whereas the original logic was
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	27	only capable of one at a time.
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	28	*}
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	29
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	30	datatype ('p,'v,'value,'r) vm_sep_state
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	31	= VMSepState "((('p \<times> 'v) \<rightharpoonup> 'value) \<times> 'r set)"
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	32
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	33	instantiation vm_sep_state :: (type, type, type, type) sep_algebra
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	34	begin
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	35
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	36	fun
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	37	vm_heap :: "('a,'b,'c,'d) vm_sep_state \<Rightarrow> (('a \<times> 'b) \<rightharpoonup> 'c)" where
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	38	"vm_heap (VMSepState (h,r)) = h"
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	39
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	40	fun
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	41	vm_root :: "('a,'b,'c,'d) vm_sep_state \<Rightarrow> 'd set" where
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	42	"vm_root (VMSepState (h,r)) = r"
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	43
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	44	definition
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	45	sep_disj_vm_sep_state :: "('a, 'b, 'c, 'd) vm_sep_state
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	46	\<Rightarrow> ('a, 'b, 'c, 'd) vm_sep_state \<Rightarrow> bool" where
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	47	"sep_disj_vm_sep_state x y = vm_heap x \<bottom> vm_heap y"
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	48
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	49	definition
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	50	zero_vm_sep_state :: "('a, 'b, 'c, 'd) vm_sep_state" where
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	51	"zero_vm_sep_state \<equiv> VMSepState (empty, {})"
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	52
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	53	fun
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	54	plus_vm_sep_state :: "('a, 'b, 'c, 'd) vm_sep_state
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	55	\<Rightarrow> ('a, 'b, 'c, 'd) vm_sep_state
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	56	\<Rightarrow> ('a, 'b, 'c, 'd) vm_sep_state" where
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	57	"plus_vm_sep_state (VMSepState (x,r)) (VMSepState (y,r'))
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	58	= VMSepState (x ++ y, r \<union> r')"
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	59
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	60	instance
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	61	apply default
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	62	apply (simp add: zero_vm_sep_state_def sep_disj_vm_sep_state_def)
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	63	apply (fastforce simp: sep_disj_vm_sep_state_def map_disj_def)
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	64	apply (case_tac x, clarsimp simp: zero_vm_sep_state_def)
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	65	apply (case_tac x, case_tac y)
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	66	apply (fastforce simp: sep_disj_vm_sep_state_def map_add_ac)
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	67	apply (case_tac x, case_tac y, case_tac z)
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	68	apply (fastforce simp: sep_disj_vm_sep_state_def)
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	69	apply (case_tac x, case_tac y, case_tac z)
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	70	apply (fastforce simp: sep_disj_vm_sep_state_def map_add_disj)
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	71	apply (case_tac x, case_tac y, case_tac z)
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	72	apply (fastforce simp: sep_disj_vm_sep_state_def map_add_disj map_disj_com)
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	73	done
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	74
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	75	end
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	76
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	77	end
a5f5b9336007 thys2 added Xingyuan Zhang <xingyuanzhang@126.com> parents: diff changeset	78

author	Christian Urban <christian dot urban at kcl dot ac dot uk>
	Sat, 13 Sep 2014 04:39:07 +0100
changeset 26	1cde7bf45858
parent 25	a5f5b9336007
permissions	-rw-r--r--